Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/YgWhKKNUniaN_Px7jdCd6U1Dpj0.cer
File: YgWhKKNUniaN_Px7jdCd6U1Dpj0.cer (raw, json)
Hash identifier: 2v6tiNn3gH4sjF9KWKHtK7WQTXM3ig4X6xYxhALRrfk=
Subject key identifier: 62:05:A1:28:A3:54:9E:26:8D:FC:FC:7B:8D:D0:9D:E9:4D:43:A6:3D
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: 7B67
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1239/YgWhKKNUniaN_Px7jdCd6U1Dpj0.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1239/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Wed 06 Oct 2021 05:54:09 +0000
Certificate not after: Fri 27 May 2022 04:59:52 +0000
Subordinate resources: IP: 27.106.128.0/18
IP: 45.121.96.0/22
IP: 103.61.176.0/22
IP: 211.148.64.0/18
IP: 220.152.128.0/17
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31591 (0x7b67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Oct 6 05:54:09 2021 GMT
Not After : May 27 04:59:52 2022 GMT
Subject: CN=6205A128A3549E268DFCFC7B8DD09DE94D43A63D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7a:8f:a7:85:8d:29:35:5b:ce:70:b9:cf:db:
7f:b4:b8:76:58:56:43:be:62:fc:c7:1c:66:b6:df:
81:7b:d3:db:b2:82:d2:28:18:e5:40:3a:dd:bc:83:
0a:64:ab:2b:45:b3:3c:6a:b3:37:e1:a2:ad:dc:73:
7b:6a:a4:51:97:9e:5c:62:b7:60:2a:12:d9:b3:89:
d8:a5:3b:61:6e:42:9f:e9:c2:61:38:ea:3b:6c:94:
b2:e0:84:b2:57:ab:ea:65:16:6e:37:92:cd:29:27:
ae:6e:72:bd:5e:a9:b3:20:81:ae:37:2e:e1:1f:83:
49:a7:fd:5e:9e:a0:7a:67:57:97:a5:ab:df:b1:27:
33:80:70:25:fc:12:dd:fa:9f:0b:b9:d8:06:5b:86:
3d:ce:1f:68:04:5d:f7:a9:a0:b8:7f:e5:f2:28:f7:
18:38:55:81:79:4d:28:08:b0:20:31:7e:fc:44:60:
21:14:f4:ba:fc:e1:5b:74:58:4a:50:b2:73:cf:bd:
bd:5c:81:6f:0e:b2:99:e0:7a:46:6d:8e:9a:6b:00:
df:5c:7b:81:9c:34:b0:15:f8:f8:2d:26:b3:ac:b8:
e6:35:f3:2d:e3:d4:6d:ef:ad:fd:21:66:4a:db:66:
dc:08:a6:c6:d6:f0:9e:2e:8a:74:c8:bf:92:71:7a:
29:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:05:A1:28:A3:54:9E:26:8D:FC:FC:7B:8D:D0:9D:E9:4D:43:A6:3D
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1239/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1239/YgWhKKNUniaN_Px7jdCd6U1Dpj0.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.106.128.0/18
45.121.96.0/22
103.61.176.0/22
211.148.64.0/18
220.152.128.0/17
Signature Algorithm: sha256WithRSAEncryption
af:f3:0e:ed:6f:04:3b:59:4d:2a:2a:c3:2f:7a:d6:66:a1:7c:
5a:45:32:67:4b:4a:75:08:f9:7f:3d:74:66:77:c5:d2:90:54:
b7:34:af:93:fe:f0:9c:0d:90:41:6d:32:68:0e:02:b8:e1:59:
4c:34:cf:a1:1b:87:28:0c:1f:86:f5:bc:73:b5:32:27:d7:91:
07:6f:93:d3:a5:b2:81:c3:58:d0:e3:9e:1d:c8:bb:7a:8c:f6:
c6:45:ab:31:4c:85:d2:b3:16:f1:b1:d2:9d:ff:63:51:3e:83:
4c:36:28:d2:46:d2:9c:43:04:06:95:9b:24:7f:55:38:a2:f0:
a2:b6:bb:79:a6:16:cf:5c:ed:51:b6:3b:f8:1c:d9:ab:1a:26:
b5:50:6f:ff:48:cb:20:56:0a:11:65:bd:c0:19:4f:2f:a6:ff:
2f:57:8d:23:58:c4:5f:c4:0f:66:55:e8:37:17:f7:09:eb:cc:
7d:13:6e:a9:99:75:e7:d3:89:eb:f4:2b:49:e2:b6:6f:55:fd:
23:2e:2c:41:ba:82:78:6f:2e:d6:14:6a:84:3d:53:bb:80:ae:
15:ea:b5:c2:a3:19:f7:89:6d:14:a4:22:41:00:87:8f:47:05:
99:20:83:d2:71:a8:cf:50:f4:f7:e6:99:af:bd:a6:b7:bb:55:
ed:59:6c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:20 2023 by rpki-client on console-ams.rpki-client.org